SharePoint: FIM / MIM fails on Import with stopped-extension-dll-exception or read-error
Consider the following scenario: You have one of the following User Profile Synchronization configurations for SharePoint: SharePoint 2010, which utilizes Forefront Identity Manager (FIM) for User Profile Synchronization. SharePoint 2013, using the “Use SharePoint Profile Synchronization” option, which also uses FIM. SharePoint 2016 or 2019, using the “Enable External Identity Manager” option, which (typically)
SharePoint: Quick Troubleshooting TIP: Check SAML token-signing Certificate
When the SAML Identity Provider (ADFS, SiteMinder, Ping Federate, OKTA, etc) token-signing certificate is renewed or rolled over, SharePoint can be in trouble. This is because there’s currently no functionality in SharePoint to automatically update the certificate within the Trusted Identity Token Issuer on the SharePoint side when it’s been updated on the Identity
SharePoint: Unique list permissions: The server was unable to save the form at this time
Consider the following scenario: You break permission inheritance on a list and give some users permission to only that list. The users can browse to the list, but when they try to add an item to the list or edit an existing item, the following error occurs: The server was unable to save
SharePoint: Quick Edit with People Picker field – The user does not exist or is not unique
Update 3/14/23: This issue was fixed for SharePoint 2019 and SPSE in the January 2023 updates. See below for details. Consider the following scenario: You have a SharePoint Server 2013, 2016, 2019, or Subscription Edition (SPSE) web application that has both Windows and Trusted Provider / SAML authentication (ADFS, etc) enabled. You have a list
SharePoint: SAML Authentication – Nested Groups and Role Claims
I came across this topic troubleshooting a support case where users were getting Access Denied to a site using Trusted Provider (SAML) authentication. The Issue: Users were given permission to the site using a group that had other groups nested in it. The users were not direct members of the group being used for permission.
SharePoint: User Profile web service failures and the dreaded 8313 error
This post is about how a simple web service failure, caused by a networking or Active Directory issue can take your site down. I’ve come across this a few different ways. The behavior is almost always intermittent, making it hard to track down. Possible Symptoms: Users intermittently receive a “Something Went Wrong” message when
SharePoint: Profile Sync and the “Domain Users” group – the Primary Group problem
Update 4/15/20: I have now tested this with AD Import and both SharePoint 2016 and 2019. It’s the same problem in both versions. This problem manifests itself in a few different ways: You create an Audience based on “Member Of” the “Domain Users” group. You notice there are only a couple (or maybe even zero)